Robert - Architecte ETHERNET

Ref : 040917R001

Profil

Chef de projet, Rédacteur technique, Architecte
Domicile

1652 ALSEMBERG (Belgique)
Mobilité

Hauts-de-France, Belgique
Tarif Journalier Moyen
Voir le tarif

Compétences

Ethernet

WAN

Windows 2000

Linux

Proxy Server

Exchange

Internet

Active Directory

LDAP

Expériences professionnelles

Challenge Business Analyst IAM-PAM

DKV-ERGO (BE)
juin 2021 - novembre 2021
Achievement Non-Disclosure clauses
Identity & Access Management / Privileged Access Management
1. Increasing the ERGO & DKV Cyber Security Maturity up to the level expected by Management Committee;
2. Cyber Security Maturity Levels to be reached are key part of the functional requirements;
3. Complying with Group and local (ERGO & DKV) ISMS policies and Belgian laws and regulations (GDPR, …);
4. Enable ERGO & DKV data to be protected and processed more securely;
5. Improving control on Identities and their Access Rights;
6. Consolidated view on Access Rights of all users allowed to access and process ERGO & DKV data (employees, business partners, customers and privileged users);
7. Enforcing key processes & principles (Joiner, Mover & Leaver processes, Recertification processes; Least privilege & need to know principles, Segregation Of Duties);
8. Access rights granted and revoked automatically and reviewed regularly;
9. Providing evidences, the processes are running efficiently;
10. KPI’s and KRI’s will be provided (alignment with project Cyber Risk Metrics and Reporting);
11. Enabling closing of IAM & PAM related Audit findings;
Bringing added value for the Business:
12. Adding visibility on users access rigths;
13. Simplifying and securing users access rights management;
14. Logging & Monitoring of users access rights management activities;
15. Logging & Monitoring of privileged users activities;
16. Providing evidences;
17. Automating joiner, mover and leaver processes;
18. Automating (re)certification processes;
19. Opportunity to improve end users experience:
20. Request & approval;
21. Single Sign On;
22. Self services (registration, password reset, …).
Personal project (HU)
janvier 2020 - janvier 2021
GSK (BE)
Challenge Risks Assessment Coordinator
Achievement Non-Disclosure clauses
Several Risks Assessment on critical platform / applications (SOX / Confidentiality and Sensitive Information).
Cyber Security Training
Challenge RFP SIEM-SOC

CARREFOUR (BE)
mai 2019 - septembre 2019
Achievements Project Manager SIEM-SOC (included CAPEX-OPEX)
Cloud Azure
23. Vulnerabilities assessment (Using EBIOS)
24. Security configuration enhancement
Agile
RFP blue-print acceptation by concerned people.
RFP redaction.
Supplier’s NDA signature
Q&A supplier’s consolidation
Supplier’s answers scoring
Supplier’s solution oral presentation
Supplier’s solution oral presentation scoring
Supplier’s short list involved to P.O. Cs
POC’s scoring
Supplier commitment to phasing implementation.
25. QUA + Tests
26. PRD + Tests
27. Roll-out
FLUXYS (BE)
janvier 2017 - août 2019
Challenge SIEM - SOC (Security Operation Center) Management Responsible
Achievements Vulnerabilities Management (Non-Disclosure clauses)
D.L.P (Data Leakage Protection / Data Loss Prevention)
CyberArk
28. PAM (Privilege Access Management)
29. PSM (Privilege Session Manager)
30. PAS (Privilege Access Security)
31. PVWA ( Password Vault Web Access)
32. EPV (Enterprise Password Vault)
33. Training-Awareness
Methodology Scrum-Agile
Using Qualys
34. Vulnerabilities scanning
35. Policy Compliance (CIS) scanning
36. Risks acceptance / mitigation process (based on CVSS rating / Risk appetite)
37. Asset discovery
ITSM Omnitracker
Hardening (operating system / data base / security nodes)
Vulnerabilities Reporting (weekly / Monthly / ad-hoc)
Metrics

38. Dashboard
39. KPIs
Firewall logs analysis
Mobile device (smartphone, tablet) management using XEN
AV solution log analysis (workstations / servers)
OMADA (IAM)
40. Business
1. Business role model
2. Entitlement Model
3. Business Role Model enforcement
4. Business Modeling Proof Of Concept
5. RACI Grid
41. Operational
1. Grid (SOLL-IST) periodic control
2. Role / Profile creation / deletion / approval
3. SAP access review
4. Segregation Of Duty
5. IAM SPOC (Life cycle, update, issues…etc.)
6. Daily check sync failure (ITSM, AD, HR…)
SCADA Environment
42. AV solution decommissioning / commissioning
P.K.I (Private Keys Infrastructure Management)
43. Certificates Management
44. Central Directory / Keys storing
45. LCM (life cycle management )
Cloud AZURE
46. Exchange and Office 365 risks assessment
47. Daily check issue (Office 365, Exchange)
48. End-users Azure Training
NIS / ENISA
CSC (Critical Security Controls) implementation objective.
Security awareness to end-user (phishing, ransomware, malware..etc.)
Threats management: IoC (Indicator of Compromise), ATP (Advanced Persistent Threat) etc.
DRP
49. DRP plan peer reviewer
Daily and projects tasks: daily tasks managed security alerts, and in some cases where news projects kick-off.
Incident Response tasks :
50. Fortinet sandbox events (FSA) – False Positive assesssment.
51. AV solutions events.
52. EndUsers incidents (management within an SLA’s management for VIP).
53. IoC (indicators of compromise).This risk was treated as soon as a CERT communicated it to me.
54. S.O.D (segregation of duties) alert from RBAC.
55. IAM sync failure
56. SCCM upgrade
57. Failure Mobile incident
58. ..etc.
ITSM (IT Service Management)
59. Process / procedure creation / enhancement package implementation
Cloud Azure
60. Vulnerabilities assessment
61. Security configuration enhancement
Projects security alert tasks
62. Patching failure management ( For unknown reasons SCCM patching failed)
63. Ransomwares / malware alerts
64. Meltdown and Spectre Intel buffer vulnerabilities
65. Vulnerabilities (findings) with Qualys scan
66. Partner Exchange with web certificate low ratings…request to obtain a A rating.
67. Weak protocol (SSL 1 or 2, FTP, SNMP v1 or 2, SSH 1…etc. )End of life
68. ..etc.
décembre 2016 - aujourd'hui
Mission to ING (BE)
Challenge ISRM / Audit
Achievements OSG’s Control
Analyse critical OSGs
Addendum template
Collect relevant information
IAM grid (SOLL-IST) user access
Monitoring (TSCM / SEM) audit
SoX controls audit
Dewaay Private Bankers (BE)
décembre 2015 - août 2016
Mission to Puilaetco
Challenge ISRM / Security Officer
Achievements BIA / DRP / Access Control / Risks Analysis
BIAs update
DRP
69. Prepare test
70. Post-mortem actions
SoX section 404
MiFID 2
Users Access Control
60. Applications
61. Remote connection
Applications RA
Mission to PROXIMUS (BE)
mai 2015 - septembre 2015
Challenge Cyber Defence Project (answer a tender / Non-disclosure agreement)
Achievements Risks Assessments / Governance / Solution Architect
Alignment with EU Council Decisions
NOC / SOC / SIEM /APT
SSRS / SECOPS / SOP redaction
to CONSIG-VILL (HU)
novembre 2014 - mars 2015
Mission
Challenge PM / Risk Assessor
Achievements Several IT projects
Solution Architect : Industrial Firewall Implementation
Infrastructure design : DMS project
to CONSIG-VILL (HU)
février 2014 - juillet 2014
Mission
Challenge Risk Assessor
Achievements Several IT projects
Enhance Security in SCADA Environment
to GDF-SUEZ (BE)
octobre 2013 - décembre 2013
Mission
Challenge Risk Assessor
Achievements Several IT projects
PKI Infrastructure
Wi-Fi Secure guest access
Mobility (smartphone)
Confidentiality compliance

Études et formations

Training Prince2 (Foundation + Practitioner)

2014
Certified in Risk and Information Systems Control

(CRISC) ISACA
2011
Boot Camp: Safety-Radioprotection-Security-Environment within nuclear environment CISSP Training

2009
Boot Camp CISM (ISACA)

2006
MEGA 2005 (I.S Architecture modeling)

2004

Langues

Anglais - B2
Hollandais - B2
Allemand - A1

Autres compétences

Certification

2000.2001 DESMI/Master II of Compiègne Technology University (France): Le Business Continuity Plan

2000 Cursus Linux Mandrake + Oracle

1999 Cursus TCP/IP + SQL

1997 Cursus MCPSE NT4

SKILLS

SOLUTION ARCHITECT
1. Visio
ARCHITECTURE
2. MEGA (TOGAF embedded, Archimate standard)
3. Urbanisation and Processes
4. Technical infrastructure
ACCESS MANAGEMENT
5. OMADA (IAM-RBAC)
6. TIM-TAM (TIVOLI)
7. CyberArk (PAM, PAS, PVWA, PSM, EPV))
8. PasswordState
9. Cloud (SaaS, IaaS, PaaS)
CHANGE MANAGEMENT
10. Omnitracker - ITSM (IT Service Management)
RISKS ASSESSMENT & SECURITY
11. Qualys (Vulnerability, Compliance, Asset discovery)
12. B.I.A
13. DRP / BCP (RTO / RPO )
14. Risks Assessment & Management
15. SAP Security
16. Incident Response (SIEM-SOC)
17. Cyber Defence
18. IoC (Indicator of Compromise)
19. CSC
20. SAP Information Lifecycle Management (SAP ILM)
21. Big Data Risks Assessment
NETWORK SECURITY
22. PKI
23. EndPoint Users security
24. Fortinet
25. NetScaler
26. SCADA
27. TCP /IP Stack
28. Asynchronous Transfer Mode (ATM)
29. Routings protocols
30. Data Center
31. Cisco ASA
32. VoIP
33. Real-Time / SCADA
34. SmartGrid (Training)
35. Wi-Fi
36. Virtualization
37. Wintel platform
38. McAfee EPO
39. SCCM
40. Scripting PowerShell
41. Microsoft End Point Devices
42. XEN (IPhone + IPad Management)
43. ISDN
44. SD-WAN
IT GOVERNANCE / METHODOLOGY
45. N.I.S Directive ( Critical Infrastructure )
46. SoX section 404
47. ISO 27k / 22301
48. EBIOS
49. GDPR
50. Security Awareness
51. PCI-DSS
52. Several reports / policies / recommendations / rules / White papers /
DATA BASE
53. SQL (good knowledge)
54. Oracle (basis)
MONITORING
55. Qualys
56. SCCM
57. FORTINET
58. AD
59. SIEM-SOC : P.OC with SPLUNK /QRADAR
CrowdStrike (Training)
CRISC certified
Prince2 Training (Foundation + Practitioner)
SCRIPTING (PowerShell good knowledge)

University Grade
Master II (UTC Compiègne France)
Certification
ISACA CRISC

LANGUAGES
Dutch = good
English = good

Recommandations reçues

Recommander Robert

Robert n'a pas encore reçu de recommandations.

D'autres freelances
Chef de projet Ethernet

Ces profils pourraient vous intéresser !

Ingénieur Télécoms

VIGNEUX-SUR-SEINE

3G 4G LTE GSM LAN Ethernet Excel Access WAN VBA Microsoft BI

Chef de projet

MARLY

LAN Internet ITIL C++ Ethernet Dreamweaver Active Directory Windows Agile Project Management Office

Expert métier BECKHOFF

VIEUX-MOULIN

C++ Ethernet Visual C++ RISC Windows XP Windows CE C# Beckhoff PC SQL

Développeur SIEMENS

VALENCIENNES

Siemens TIA Portal Schneider PL7 C++ Visual Studio SEE Electrical Expert Ethernet Java MATLAB

Architecte réseaux ADSL

COULONGES-LES-SABLONS

Ethernet SMNP TCP / IP Windows NT Windows 95/98 ADSL Cat 5 Cisco Exchange Java

Administrateur Systèmes et Réseaux

MONTARNAUD

PC Ethernet ADSL Windows SharePoint Services Windows Autopilot LAN Cisco Microsoft Intune Microsoft Power Automate Active Directory

Développeur DELPHI

SAINT-ÉTIENNE-DU-GRÈS

Delphi ADSL BDD Borland Database Engine Centrex CTI Ethernet FTP Hyper-V ISDN

Chef de projet PRINCE II

VERNOUILLET

PRINCE2 Reflex ITIL MOA MS Project Outlook Pack Office Ethernet VLAN IoT

Chef de projet ETHERNET

Vélizy-Villacoublay

Ethernet Agile LAN Excel ITIL ITSM MPLS Jira Lean Management ADSL

Chef de projet BUREAUTIQUE

AUBOUE

Ethernet Mac Routeurs Internet iPhone iPad HELP DESK HelpDesk Bureautique Google Analytics

Mme

Prénom ^*

Nom ^*

Email ^*

Téléphone ^*

Ville ^*

Avez-vous trouvé une mission ? ^*

J'accepte d'être contacté par nos partenaires, experts en portage salarial et j'accepte la politique de confidentialité du site www.freelance-informatique.fr

Domaines d'expertise liés

CV en rapport

CV Architecte linux

Robert - Architecte ETHERNET

Chef de projet, Rédacteur technique, Architecte

1652 ALSEMBERG (Belgique)

Challenge Business Analyst IAM-PAM

Challenge RFP SIEM-SOC

Training Prince2 (Foundation + Practitioner)

Certified in Risk and Information Systems Control

Boot Camp: Safety-Radioprotection-Security-Environment within nuclear environment CISSP Training

Boot Camp CISM (ISACA)

MEGA 2005 (I.S Architecture modeling)

D'autres freelances Chef de projet Ethernet